Vulnerability CVE-2013-3582


Published: 2013-08-28   Modified: 2013-08-29

Description:
Buffer overflow in Dell BIOS on Dell Latitude D###, E####, XT2, and Z600 devices, and Dell Precision M#### devices, allows local users to bypass intended BIOS signing requirements and install arbitrary BIOS images by leveraging administrative privileges and providing a crafted rbu_packet.pktNum value in conjunction with a crafted rbu_packet.pktSize value.

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

Vendor: DELL
Product: Latitude d530 
Product: Latitude d 
Product: Precision m6300 
Product: Latitude e6500 
Product: Latitude e5400 
Product: Latitude d630 
Product: Latitude xt2 
Product: Precision m6500 
Product: Precision m2400 
Product: Latitude e6400 
Product: Latitude d830 
Product: Precision m 
Product: Precision m4400 
Product: Latitude e6400 atg xfr 
Product: Latitude e4300 
Product: Latitude d531 
Product: Latitude e 
Product: Precision m6400 
Product: Precision m2300 
Product: Latitude e5500 
Product: Latitude d631 
Product: Latitude z600 
Product: Precision m4300 
Product: Latitude e6400 atg 
Product: Latitude e4200 

CVSS2 => (AV:N/AC:H/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.6/10
10/10
4.9/10
Exploit range
Attack complexity
Authentication
Remote
High
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://www.kb.cert.org/vuls/id/BLUU-99HSLA
http://www.kb.cert.org/vuls/id/912156
https://www.blackhat.com/us-13/archives.html#Butterworth
https://media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-WP.pdf
https://media.blackhat.com/us-13/US-13-Butterworth-BIOS-Security-Slides.pdf

Related CVE
CVE-2019-3764
Dell EMC iDRAC8 versions prior to 2.70.70.70 and iDRAC9 versions prior to 3.36.36.36 contain an improper authorization vulnerability. A remote authenticated malicious iDRAC user with low privileges may potentially exploit this vulnerability to obtain...
CVE-2019-3745
The vulnerability is limited to the installers of Dell Encryption Enterprise versions prior to 10.4.0 and Dell Endpoint Security Suite Enterprise versions prior to 2.4.0. This issue is exploitable only during the installation of the product by an adm...
CVE-2019-3747
Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a stored cross-site scripting vulnerability. A remote malicious ACM admin user may potentially exploit this vulnerability to store malicious HTML or JavaScript code in Cloud ...
CVE-2019-3746
Dell EMC Integrated Data Protection Appliance versions prior to 2.3 do not limit the number of authentication attempts to the ACM API. An authenticated remote user may exploit this vulnerability to launch a brute-force authentication attack in order ...
CVE-2019-3736
Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a password storage vulnerability in the ACM component. A remote authenticated malicious user with root privileges may potentially use a support tool to decrypt encrypted pass...
CVE-2019-3763
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain an information exposure vulnerability. The Office 365 user password may get logged in a plain text format in the Office 365 co...
CVE-2019-3761
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain a stored cross-site scripting vulnerability in the Access Request module. A remote authenticated malicious user could potentia...
CVE-2019-3760
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products prior to 7.1.0 P08 contain a SQL Injection vulnerability in Workflow Architect. A remote authenticated malicious user could potentially exploit this vuln...

Copyright 2019, cxsecurity.com

 

Back to Top